Next-Generation Segregation of Duties Policy Engine Delivers Real-Time Access Control Across the Enterprise
April 2, 2008
Oracle (NASDAQ: ORCL) today announced the immediate availability of Oracle(r) Application Access Controls Governor Release 8, a key component of the Oracle Governance, Risk, and Compliance (GRC) applications suite and the latest release of Oracle's comprehensive application access control solution that enables compliance, audit and security officers to automatically enforce authorization policies across Oracle and non-Oracle systems.
The latest release of Oracle Application Access Controls Governor provides:
Best-practice segregation of duties policy libraries for Oracle's PeopleSoft Enterprise and Oracle E-Business Suite to natively embed real-time preventive controls within the applications. Also, this release leverages a services-oriented adapter framework and integration templates that easily extend capabilities to non-Oracle applications. The services-oriented approach is designed specifically to provide end-to-end access control across heterogeneous application environments.
A sophisticated access policy engine that supports fine-grained controls authoring and handling. This engine helps ensure that access policies are applied within their proper business context, thereby reducing any impact on daily business operations and minimizing unnecessary detection and remediation cycles resulting from false positives.
A central work queue console that includes contextual reports with embedded heat maps to enable more rapid identification and remediation of conflicts. Compliance and security officers can leverage pre-delivered embedded analytics that trace exceptions back to their root sources, along with advanced simulation capabilities to quickly and accurately diagnose exceptions.
Oracle Application Access Controls Governor is a key component of the Oracle GRC applications suite, a comprehensive portfolio of solutions that combine GRC intelligence, process and content management, and controls enforcement to achieve business objectives while helping to ensure compliance with regulatory and corporate mandates. The Oracle GRC applications suite includes:
Oracle Fusion Governance, Risk, and Compliance Intelligence - presents qualitative and quantitative information from both Oracle and non-Oracle systems through integrated reports and dashboards, allowing executives and managers to confidently identify and focus efforts on key risk and control issues.
Oracle Governance, Risk, and Compliance Manager - helps companies simplify regulatory compliance and reduce their costs by centrally managing policies and automating tasks to define, document, test and report on cross-regulatory control procedures.
Oracle Application Access Controls Governor - documents, manages, remediates and enforces access policies for effective segregation of duties.
Oracle Configuration Controls Governor - enforces data and application configuration integrity by tracking changes to critical setups and data.
Oracle Transaction Controls Governor - continuously monitors policies, controls and transactions to detect suspicious business activities.
Oracle Preventive Controls Governor - prevents unauthorized changes to critical application data and setups, and enforces real-time policy changes at a granular application level.
"Oracle Application Access Controls Governor Release 8 enables organizations to resolve access and authorization pain points on a global level," said Oracle GRC Strategy Vice President Chris Capdevila. "With the pre-built library of segregation of duties controls - now including hundreds of controls for PeopleSoft, open adapter framework for multi-platform support, and the ability to automate and enforce corporate policies in real-time, customers can meet their corporate governance, regulatory compliance and risk management goals with the greatest assurance."
"We've been able to realize significant returns on our investment in the Oracle Governance, Risk, and Compliance Controls Suite to date," said Intuit Controls Advisory Manager Robert Singleton. "The 8.0 release of Oracle Application Access Controls Governor should help us continue our efforts to deliver well-controlled and efficient business processes, not only across the Oracle E-Business Suite, but also in our PeopleSoft and Siebel applications."
"PricewaterhouseCoopers helps clients to rationalize risk and compliance operating models using recognized enterprise risk management principles," said Miles Everson, partner, PricewaterhouseCoopers. "Our alliance with Oracle and the continuing expansion of their enterprise GRC platform aligns with our integrated GRC (iGRC) model to help organizations increase business process effectiveness while reducing cost and complexity."
Oracle (NASDAQ: ORCL) is the world's largest enterprise software company. For more information about Oracle, please visit our Web site at http://www.oracle.com.
Oracle is a registered trademark of Oracle Corporation and/or its affiliates. Other names may be trademarks of their respective owners. This document is for informational purposes only and may not be incorporated into a contract or agreement.